SharePoint Diary » Permission » External Sharing » How to Disable External Sharing in SharePoint Online?

How to Disable External Sharing in SharePoint Online?

February 13, 2022 Salaudeen Rajack 0 Comments disable external sharing in sharepoint online, disable external sharing sharepoint online powershell, disable external sharing sharepoint online site collection, how to disable external sharing in sharepoint online

Requirement: Disable external sharing in SharePoint Online using PowerShell

External sharing in SharePoint Online is a feature that enables users to share documents and content outside the organization with people who are not members of your organization, such as vendors, customers, consultants, etc. However, many organizations don’t want to open sharing because of security reasons! External sharing settings can be controlled at two levels: Tenant-wide and site collection levels.

To turn off external sharing in SharePoint Online at the tenant level, follow these steps:

Login to SharePoint Online Admin Center as a global admin or SharePoint Online administrator.
From the left navigation, Expand “Policies” and click on “Sharing”.
Change the Sharing Settings for SharePoint Online to “Only people in your organization” to disable external sharing.
Click on the “Save” button at the bottom to save your changes. This sets only members of the tenant can receive sharing invitations.

OneDrive for Business site’s External sharing settings depends on SharePoint’s Sharing settings! You cannot set OneDrive settings that are more permissive than the SharePoint Online tenant settings. (In other words, OneDrive for Business Sharing settings can be more restrictive than SharePoint Online’s Sharing settings).

If you are using classic admin center, To turn off external sharing:

Under the “Sharing outside your organization” section, set the sharing option to “Don’t allow sharing outside your organization”.
Click on the “OK” button at the bottom to save your changes.

This prevents all users on all sites from sharing sites or sharing content on sites with external users.

We wanted to disable external sharing entirely for the organization.

#Set Admin Center URL
$AdminCenterURL = "https://crescent-admin.sharepoint.com/"
 
#Connect to SharePoint Online
Connect-SPOService -url $AdminCenterURL -Credential (Get-Credential)
 
#Disable external sharing for the tenant
Set-SPOTenant -SharingCapability Disabled

The same can be achieved with PnP PowerShell as:

#Parameters
$TenantAdminURL = "https://crescent-admin.sharepoint.com"
 
#Connect to Tenant Admin Site
Connect-PnPOnline -url $TenantAdminURL -Interactive
 
#Disable External Sharing for the tenant
Set-PnPTenant -SharingCapability Disabled

You can also disable external sharing at each individual SharePoint Online site collection. To disable external sharing at site collection level using SharePoint Online admin center, follow these steps:

Go to SharePoint Online Admin Center >> Select the desired Site collection from the list
Click on “Sharing” button >> Set the sharing settings to “Only people in current organization”. Click on “Save” to commit your changes.

You can use PowerShell to further restrict sharing settings on individual SharePoint sites.

#Set Admin Center URL
$AdminCenterURL = "https://crescent-admin.sharepoint.com/"
$SiteURL="https://crescent.sharepoint.com/sites/operations"

#Connect to SharePoint Online
Connect-SPOService -url $AdminCenterURL -Credential (Get-Credential)

#Disable external sharing
Set-SPOSite $SiteURL -SharingCapability "Disabled"

Similarly, To disable external sharing using PnP PowerShell, use:

#Parameters
$TenantAdminURL = "https://crescent-admin.sharepoint.com"
$SiteURL = "https://crescent.sharepoint.com/sites/Purchase"
 
#Connect to Tenant Admin Site
Connect-PnPOnline -url $TenantAdminURL -Interactive

#Disable External Sharing for a site
Set-PnPTenantSite -Url $SiteURL -SharingCapability Disabled

You can verify this in your SharePoint Online admin center, as shown in the image above. To get the list of sites where sharing capability is disabled:

Get-SPOSite | Where {$_. SharingCapability -eq "Disabled"}

If you disable external sharing at site collection level, all existing external users will not be able to access the content inside the selected site collections. You have to re-invite them again. If you want to temporarily disable external user access, turn off external sharing at tenant level from the SharePoint Online Admin Center!

To enable external sharing in SharePoint Online, refer to How to Enable External Sharing in SharePoint Online using PowerShell?

Salaudeen Rajack

Salaudeen Rajack is a SharePoint Architect with Two decades of SharePoint Experience. He loves sharing his knowledge and experiences with the SharePoint community, through his real-world articles!

SharePoint Diary

Salaudeen Rajack

Leave a Reply Cancel reply

Switch between Document Libraries with Document Library Dropdown Menu in SharePoint Online and OneDrive

Hide a Button in SharePoint Online List or document library Toolbar

SharePoint Online: Switch Navigation to Horizontal or Vertical

SharePoint Online: How to Enable Global Navigation using App Bar?

How to Connect to Exchange Online using PowerShell?

How to Copy Permissions from One Folder to Another in SharePoint Online using PowerShell?

Microsoft Teams: How to Enable Guest User Access?

How to Copy User Permissions in SharePoint Online using PowerShell?

How to Bulk Invite Guest Users to Azure AD?

SharePoint Online: How to Change the Author in Modern Page?